Microsoft远程桌面连接ActiveX控件堆缓冲区溢出漏洞

漏洞起因
边界条件错误
 
影响系统
Microsoft Windows XP Tablet PC Edition SP3
Microsoft Windows XP Professional x64 Edition SP2
Microsoft Windows XP Professional SP3
Microsoft Windows XP Professional SP2
Microsoft Windows XP Media Center Edition SP3
Microsoft Windows XP Home SP3
Microsoft Windows XP Home SP2
Microsoft Windows Vista x64 Edition SP2
Microsoft Windows Vista x64 Edition SP1
Microsoft Windows Vista Ultimate 64-bit edition SP2
Microsoft Windows Vista Ultimate 64-bit edition SP1
Microsoft Windows Vista Home Premium 64-bit edition SP2
Microsoft Windows Vista Home Premium 64-bit edition SP1
Microsoft Windows Vista Home Basic 64-bit edition SP2
Microsoft Windows Vista Home Basic 64-bit edition SP1
Microsoft Windows Vista Enterprise 64-bit edition SP2
Microsoft Windows Vista Enterprise 64-bit edition SP1
Microsoft Windows Vista Business 64-bit edition SP2
Microsoft Windows Vista Business 64-bit edition SP1
Microsoft Windows Vista Ultimate SP2
Microsoft Windows Vista Ultimate SP1
Microsoft Windows Vista SP2
Microsoft Windows Vista SP1
Microsoft Windows Vista Home Premium SP2
Microsoft Windows Vista Home Premium SP1
Microsoft Windows Vista Home Basic SP2
Microsoft Windows Vista Home Basic SP1
Microsoft Windows Vista Enterprise SP2
Microsoft Windows Vista Enterprise SP1
Microsoft Windows Vista Business SP2
Microsoft Windows Vista Business SP1
Microsoft Windows Server 2008 Standard Edition SP2
Microsoft Windows Server 2008 Standard Edition 0
Microsoft Windows Server 2008 for x64-based Systems SP2
Microsoft Windows Server 2008 for x64-based Systems 0
Microsoft Windows Server 2008 for Itanium-based Systems SP2
Microsoft Windows Server 2008 for Itanium-based Systems 0
Microsoft Windows Server 2008 for 32-bit Systems SP2
Microsoft Windows Server 2008 for 32-bit Systems 0
Microsoft Windows Server 2008 Enterprise Edition SP2
Microsoft Windows Server 2008 Enterprise Edition 0
Microsoft Windows Server 2008 Datacenter Edition SP2
Microsoft Windows Server 2008 Datacenter Edition 0
Microsoft RDP 6.1
+ Microsoft Windows Server 2003 Datacenter Edition
+ Microsoft Windows Server 2003 Datacenter Edition Itanium 0
+ Microsoft Windows Server 2003 Enterprise Edition
+ Microsoft Windows Server 2003 Enterprise Edition Itanium 0
+ Microsoft Windows Server 2003 Standard Edition
+ Microsoft Windows Server 2003 Web Edition
 
不受影响系统
 
危害
远程攻击者可以利用漏洞以登录用户进程上下文执行任意指令。
 
攻击所需条件
攻击者必须访问Microsoft windows。
 
漏洞信息
Microsoft windows是一款流行的操作系统。
Microsoft终端服务客户端ActiveX控件存在一个基于堆的缓冲区溢出,构建恶意WEB页,诱使用户解析,可导致以应用程序安全上下文执行任意指令。
目前没有详细漏洞细节提供。
 
测试方法
 
厂商解决方案
用户可参考如下补丁信息:
Microsoft RDP 6.1
Microsoft Security Update for Windows Server 2008 (KB956744)
http://www.microsoft.com/downloads/details.aspx?familyid=71c17a87-710b -434d-9b2a-2f471674915a
Microsoft Security Update for Windows Server 2008 for Itanium-based Systems (KB956744)
http://www.microsoft.com/downloads/details.aspx?familyid=65d0af4e-22a2 -4524-a003-2f4858012fa8
Microsoft Security Update for Windows Server 2008 x64 Edition (KB956744)
http://www.microsoft.com/downloads/details.aspx?familyid=f095d2d5-4513 -4ae1-96c7-cbcf83304261
Microsoft Security Update for Windows Vista (KB956744)
http://www.microsoft.com/downloads/details.aspx?familyid=cf95a552-f6fd -4e35-815a-d16c015cd3ea
Microsoft Security Update for Windows Vista for x64-based Systems (KB956744)
http://www.microsoft.com/downloads/details.aspx?familyid=5e19cef7-2413 -4575-9597-c6273a097aad
Microsoft Security Update for Windows XP (KB956744)
http://www.microsoft.com/downloads/details.aspx?familyid=d1f82d76-eeb2 -4ff4-9d2c-46882f214719
Microsoft Security Update for Windows XP x64 Edition (KB956744)
http://www.microsoft.com/downloads/details.aspx?familyid=5061615f-fa8f -465f-ac8f-393998b7e91b
 
漏洞提供者
Yamata Li

发表评论?

0 条评论。

发表评论